Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft
File:                     zdCuQc2rVZhilkF4v-rjaElrB9c.mft (raw, json)
Hash identifier:          BtjMbPvtq3Z+KBxINhmsUZoqxDstPqrA8dp2rwqVLjo=
Subject key identifier:   A4:CF:26:BD:A1:94:2D:FE:B6:5E:E9:16:D8:EE:87:D8:85:6D:68:76
Authority key identifier: CD:D0:AE:41:CD:AB:55:98:62:96:41:78:BF:EA:E3:68:49:6B:07:D7
Certificate issuer:       /CN=cdd0ae41cdab559862964178bfeae368496b07d7
Certificate serial:       01977A1DCA42A3B55E1E3EFDA9F0747CC923
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zdCuQc2rVZhilkF4v-rjaElrB9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft
Manifest number:          0C75
Signing time:             Mon 16 Jun 2025 19:01:01 +0000
Manifest this update:     Mon 16 Jun 2025 19:01:01 +0000
Manifest next update:     Tue 17 Jun 2025 19:01:01 +0000
Files and hashes:         1: zdCuQc2rVZhilkF4v-rjaElrB9c.crl (hash: g9FQIHwMHhftip3oPwhOOeylHaDjZDvtbJK7Fc3cFBY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zdCuQc2rVZhilkF4v-rjaElrB9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 19:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:7a:1d:ca:42:a3:b5:5e:1e:3e:fd:a9:f0:74:7c:c9:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cdd0ae41cdab559862964178bfeae368496b07d7
        Validity
            Not Before: Jun 16 19:01:01 2025 GMT
            Not After : Jun 17 19:01:01 2025 GMT
        Subject: CN=a4cf26bda1942dfeb65ee916d8ee87d8856d6876
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:45:4b:e2:62:20:f2:c8:d0:53:d5:1b:c9:f3:
                    bd:66:88:08:c7:bb:8a:2f:d3:7a:41:d8:a2:47:a0:
                    64:69:c7:d1:f8:7a:5b:6f:3d:2b:3d:07:dc:dd:a6:
                    11:d5:bc:b4:6b:f3:0c:1e:6a:9d:e4:c6:7f:ad:27:
                    5e:d9:88:ae:a6:ab:62:19:94:13:31:e1:b1:0f:7d:
                    08:d7:c9:b3:dd:17:0a:26:84:be:3d:89:0e:91:d6:
                    0c:65:ef:b4:8a:28:55:05:0b:3c:4a:3f:78:01:86:
                    d7:71:2f:82:ed:68:3c:03:76:c4:d7:f2:d6:75:44:
                    17:dd:df:f9:b3:45:f0:a2:2c:f8:0c:5f:b6:23:5b:
                    33:6c:3e:c6:78:4b:52:a0:0e:06:b6:82:e5:40:f9:
                    c0:33:9c:94:34:88:95:d9:f2:bf:ec:3f:b4:78:e5:
                    53:6c:1e:3a:8d:92:eb:f0:cb:24:0a:2c:c5:93:3e:
                    12:4e:25:a6:15:9f:0a:fb:3f:60:54:04:e6:4d:f1:
                    86:21:86:b2:c0:71:2d:fe:0c:a2:d6:58:2e:32:2c:
                    06:57:ff:32:f1:d0:8f:03:23:8e:61:3b:62:d8:10:
                    1e:42:26:d9:88:8c:f7:57:72:57:08:40:d3:3b:cf:
                    e8:a0:44:29:8d:3b:58:50:ce:ec:ea:c4:69:5b:c7:
                    e8:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:CF:26:BD:A1:94:2D:FE:B6:5E:E9:16:D8:EE:87:D8:85:6D:68:76
            X509v3 Authority Key Identifier:
                keyid:CD:D0:AE:41:CD:AB:55:98:62:96:41:78:BF:EA:E3:68:49:6B:07:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdCuQc2rVZhilkF4v-rjaElrB9c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/14d71e-e0d8-4fff-b3fa-428324a9244e/1/zdCuQc2rVZhilkF4v-rjaElrB9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:15:b8:c4:67:9d:9d:9f:ac:c6:48:17:c2:b5:be:81:2e:33:
         e5:b1:a5:73:08:78:9c:fe:73:de:64:f2:ef:51:d7:13:21:86:
         e4:dc:3b:fb:9b:21:ef:91:5b:d8:99:e9:b3:08:5d:69:83:a4:
         d5:37:51:39:f1:f8:2c:bf:16:78:1b:75:93:c1:ea:46:97:64:
         23:2b:bb:dc:52:83:c0:26:2b:53:e9:e3:be:28:bd:76:f2:ca:
         b2:a5:41:30:fd:4f:75:fb:8a:01:f1:6c:d9:4e:14:9f:5b:8a:
         cd:d6:dd:16:e0:b3:72:ce:21:30:74:71:ee:14:53:dc:1c:3b:
         aa:9f:55:92:ad:59:f2:72:3f:f5:3c:1e:df:8c:a8:f3:3f:28:
         65:0c:dd:59:9a:a4:bd:9e:33:d0:e3:2c:e2:ef:18:06:f5:f7:
         c0:ec:52:a1:52:bd:01:77:9a:07:e5:8b:20:e2:71:1a:86:e4:
         ba:1e:32:8b:d5:be:5c:4e:f1:46:ad:ed:f2:34:46:aa:c5:bc:
         d8:ba:a5:d0:fd:22:2a:00:de:10:cd:f3:69:2a:9d:2c:8f:b7:
         e9:9d:38:f2:cc:2c:ef:1a:c5:41:c4:ac:5a:f2:43:1a:89:b4:
         ed:45:94:7e:60:4f:48:c9:ec:f6:e9:cf:80:3d:8b:cf:c4:5a:
         d4:6f:15:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----